Glossary term
DMARC / DKIM / SPF
Also: Email authentication, Email spoofing protection
Three standards that together authenticate email senders and impede spoofing. SPF authenticates the sending IP, DKIM signs the content, DMARC links both via the From header and defines the policy.
SPF: TXT record in DNS listing permitted sending IPs. Limitation: breaks on forwarding.
DKIM: cryptographic signature of email header and/or body, verifiable via DNS public key. Works even across forwarding.
DMARC: policy layer (none/quarantine/reject), reporting (aggregate + forensic) and alignment between From header and SPF/DKIM. Roadmap: monitoring 4-8 weeks, then quarantine, then reject. 2024-2026: Yahoo, Google and Microsoft enforce DMARC for bulk senders.
Related terms
Supply Chain Risk
Risks from the software and hardware supply chain: compromised open-source packages, build-pipeline …
Dealbreaker
A hard requirement that immediately disqualifies an option if not met, independent of weighted scori…
Decision memo
A short structured document that captures why a decision was made, the options considered, the crite…
Defensible record
A single versioned artefact that captures a decision in enough structure, with enough evidence and s…
DLP
Software category for detecting and preventing unauthorised data outflow. Operates on endpoints, net…
DORA
EU regulation on digital operational resilience in the financial sector. Directly applicable since 1…
DORA ICT risk management
The EU Digital Operational Resilience Act regulates the operational resilience of financial entities…
DPIA
Mandatory assessment under GDPR Art. 35 where processing is likely to result in high risk to the rig…